Aggregator

Zenity expanded its AI security platform with incident-correlation intelligence, broader agentic browser coverage, and a new open-source tool for testing emerging LLM manipulation techniques. As organizations adopt AI agents, AI assistants and agentic browsers at scale, security teams face increasing difficulty understanding how incidents unfold across identities, workflows and environments. Traditional alerting provides signals, but not the narrative behind them. Zenity’s latest advancements provide a unified approach for detecting, analyzing and governing AI behaviors in … More →

The post Zenity expands AI security platform with incident intelligence and agentic browser protection appeared first on Help Net Security.

Arizona Attorney General Kris Mayes has announced a lawsuit against the popular Chinese e-commerce retailer Temu, accusing the company of stealing vast amounts of customer data. The lawsuit, filed Tuesday, positions Arizona alongside several other states taking legal action against Temu and its parent company, PDD Holdings Inc. Mayes stated that Temu’s application deceives customers […]

The post Arizona Attorney General Suses Chinese E-commerce Retailer Temu Over Data Theft Claims appeared first on Cyber Security News.

Amazon Web Services (AWS) this week made an AWS Security Hub for analyzing cybersecurity data in near real time generally available, while at the same time extending the GuardDuty threat detection capabilities it provides to the Amazon Elastic Compute Cloud (Amazon EC2) and Amazon Elastic Container Service (Amazon ECS). Announced at the AWS re:Invent 2025..

The post AWS Adds Bevy of Tools and Capilities to Improve Cloud Security appeared first on Security Boulevard.

You must login to view this content

You must login to view this content

You must login to view this content

You must login to view this content

You must login to view this content

You must login to view this content

You must login to view this content

Austin, TX, USA, 4th December 2025, CyberNewsWire

The post SpyCloud Data Shows Corporate Users 3x More Likely to Be Targeted by Phishing Than by Malware appeared first on Security Boulevard.

Tenable Cloud Security delivers critical capabilities to unify security across your entire attack surface. Our latest enhancements let you extend your on-prem vulnerability management program to the cloud; gain granular visibility into external access risk; and discover Snowflake sensitive data.

1. Unified hybrid security: Tenable Cloud Vulnerability Management extends traditional on-prem security programs to the cloud, unifying agentless visibility and prioritized risk assessment across hybrid environments.
    
2. Actionable analytics: Console updates feature customizable dashboards and new widgets for tracking critical metrics like Mean Time to Resolution (MTTR) and quickly identifying trends.
    
3. Expanded exposure coverage and insights. Deepen DSPM with Snowflake data discovery, gain more granular identity visibility, and improve focus with noise-free Linux vulnerability detection. And accelerate your cloud security maturity through guided use cases for least privilege and reducing the blast radius.

Organizations are running workloads across hybrid environments — on-prem systems, cloud services, and containers. Yet fragmented visibility and endless alerts make it hard to see real risk. Tenable’s latest updates give teams actionable visibility, context, and control across the entire attack surface — starting with today’s cloud needs while paving the way for broader exposure management tomorrow. 

Built on Tenable’s market-leading approach to exposure assessment, these cloud security enhancements help teams continuously spot, prioritize, and reduce exposure across all environments.
 

If you’ve built a mature on-prem vulnerability management program, you know the drill: asset discovery, vulnerability prioritization, and actionable reporting. What’s changed is the attack surface. Cloud workloads, containers, and ephemeral resources often remain invisible to traditional VM tools, creating blind spots.

Tenable Cloud Vulnerability Management extends your on-prem vulnerability management program into the cloud, giving you agentless visibility and prioritized remediation in a unified view. This means you can secure hybrid workloads with the same confidence as your on-prem environments – and uncover hidden risks, like a critical EC2 vulnerability whose public exposure through a misconfigured security group turns it into a real attack path.
 

Traditional VM tools often stop at CVEs but Tenable Cloud Vulnerability Management integrates vulnerability management into a broader exposure strategy. This dashboard shows unified vulnerability risk visibility across on-prem, cloud, and hybrid environments.

• Maintain workflow continuity for on-prem vulnerability management teams
• Eliminate blind spots across multi-cloud and hybrid workloads
• Lay a foundation for future exposure management

Visibility isn’t useful unless you can act on it quickly. This month’s console enhancements make cloud risk easier to read, measure, and explain.

• New findings widgets: Track trends, MTTR, and response efficiency at a glance. These widgets turn raw vulnerability data into actionable insights, helping teams prioritize risk and measure progress.
• Smarter, customizable dashboards. Apply filters, compare environments side by side, and reuse widgets to explore different slices of risk. For example, seeing AWS, Azure, and GCP severity trends in one view helps align remediation and communicate multi-cloud posture quickly.
• Bulk resource labeling: Tag dozens or hundreds of cloud resources in seconds, such as all production EC2 instances. This streamlines filtering, reporting, and operational efficiency, providing a cleaner, more actionable inventory.
   

New findings widgets track trends, MTTR, and response efficiency at a glance, turning raw vulnerability data into actionable insights

This month’s updates surface high-risk exposures and deliver more actionable cloud security insights while reducing noise.

• Snowflake sensitive data-scanning: Tenable Cloud Security now reduces your exposure across this popular cloud data platform. Automatically discover and classify sensitive data, see where it resides, and assess whether it’s exposed.
• Noise-free Linux vulnerability detection: Getting rid of the noise improves team focus. This enhancement filters out unused kernel versions left after upgrades, reducing false positives to keep the focus on real risk.
• Identity and access management (IAM) visibility across AWS and Azure: Instantly identify over-permissioned or externally exposed identities and reduce risk before it’s exploited

Tenable’s guided use cases help you address urgent cloud security challenges and build an exposure management foundation. This month, we’ve added two high-impact packages:

• Enforce Least Privilege Across Cloud Identities. Quickly uncover excessive permissions, rightsize policies with confidence, and stop identity-based lateral movement before it starts.
• Mitigate the Blast Radius of Vulnerabilities. Identify which vulnerabilities matter by seeing their exploitability, the assets they impact, and the identities that can reach them.

Each use case package includes a focused solution brief, a guided implementation demo, and a golden demo, which is a ready-to-run, pre-configured, best-practice deployment you can model your secure cloud program on.

Example of a guided workflow that shows how Tenable helps identify and reduce excessive permissions across cloud identities – achieving least privilege.

Tenable combines deep cloud research with practical exposure management. Recognized in 2025 by Gartner, Forrester, IDC and Latio for its leadership and vision in exposure management across hybrid environments, our insights help teams stay ahead of evolving threats.

Tenable Research findings feed directly into the Tenable One Exposure Management Platform, improving detection and prioritization for stronger workload security. In November, we continued our focus on AI security, uncovering seven novel AI vulnerabilities in ChatGPT.

1. What is Tenable Cloud Vulnerability Management and why does it matter?
   Tenable Cloud Vulnerability Management brings your on-prem vulnerability management program into cloud and hybrid workloads, providing agentless visibility, unified risk assessment, and actionable remediation. It eliminates blind spots, links vulnerabilities to exposure and identity risks, and helps teams act faster, giving clarity today and a path toward broader exposure management.
2. What console features help teams act on findings?
   Tenable Cloud Security’s console provides findings insights features and granularity designed to help teams act quickly on security issues; these include:
   • Actionable dashboards: Instant visibility into open and critical finding statuses
   • Trend tracking: Changes in the type and severity of findings over time
   • Resolution metrics: Key operational data like Mean Time to Resolution (MTTR) and detailed resolution status
3. How do guided use cases help?
   Each package includes a golden demo, guided demo, and solution brief to tackle real-world cloud security challenges immediately.
4. Other updates to know:
   Sensitive data scanning for Snowflake, noise-free Linux vulnerability detection, and IAM access visibility across AWS and Azure.

• Tenable Cloud Vulnerability Management
• What is CTEM?
• Insight Brief: AI Adoption Outplaces Security

Darktrace announced a series of enhancements to Darktrace / EMAIL designed to detect and stop attacks spanning communications channels, strengthen outbound email protections, and streamline SOC integrations. The new capabilities will help security teams catch sophisticated attacks that evade existing email tools, protect sensitive data, and preserve trust in digital communications, all while reducing operational complexity. New Darktrace research shows that even with multiple layers of email security in place, a significant share of dangerous … More →

The post Darktrace / Email strengthens behavioral detection, DLP, and SOC integrations appeared first on Help Net Security.